35247a846addb1e2f8c77fc01de38762_JaffaCakes118 | Triage

Sharing

General

Target

35247a846addb1e2f8c77fc01de38762_JaffaCakes118
Size

96KB
MD5

35247a846addb1e2f8c77fc01de38762
SHA1

92a1dc3c19c61726195039339c870f5dc83d1b27
SHA256

c37235f3709a4273630320105c1128ddf581f70be203fae619c6a9b70f8329d7
SHA512

4fcecd5e1b08d7651c629d693d1b6f55a2cff4f4f59cb6d56a8af20c3c166b99fa01df038d1d882dad4725d695726292ade4349a7f126d9c9340b7b5c33bb013
SSDEEP

1536:FhsIyq9s2HfyMtT+AGP2cE4vKbOrSvEE+rQzQxz6ylrZNokN2vQUqA9:FV9sViTfGejOrS8EAvx2A3oIUX9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35247a846addb1e2f8c77fc01de38762_JaffaCakes118

Files

35247a846addb1e2f8c77fc01de38762_JaffaCakes118
.exe windows:4 windows x86 arch:x86

647b2d25b4821905b4195ff7a6455b54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

kujytkyt
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�ytkytjk
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

htrtjhtj
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE